The security in Qlik Sense consists of many parts. In the QMC, there is a system with security rules for almost everything you can do, not only data access. There are also rules to change the setup or rights to publish apps or sheets. This implies protection of the platform, that is, how the Qlik Sense platform itself is protected and how it communicates and operates.
However, security as a concept goes beyond that. So let's start from the beginning.
The two most basic concepts in security are authentication and authorization. Authentication answers the question, "Who is the user and how can the user prove it?" Authorization answers the question, "What does this specific user have access to, and what are they allowed to do?"
In Qlik Sense, authentication and authorization are two distinct, unconnected actions. In addition, the sources of information used for authentication do not have to be the same as for authorization, and vice versa.
Qlik Sense uses...